firejail - Mirror of https://github.com/netblue30/firejail

	Commit message (Collapse)	Author	Age
*	profiles: vmware: allow devel	Kelvin M. Klann	2023-06-21
\| \| \| \| \| \| \| \| \| \| \|	It apparently fails on Linux Mint 20.3 (based on Ubuntu 20.04) due to the "VMWare Kernel Module Updater" being unable to find gcc[1]. Relates to #3526. [1] https://github.com/netblue30/firejail/issues/5861#issuecomment-1598407890 Reported-by: @MikeNavy
*	profiles: add vmplayer.profile	Kelvin M. Klann	2023-06-21
\| \| \| \| \| \| \| \| \| \| \| \| \|	As a redirect to vmware.profile. This is apparently the filename for the "VMWare Workstation Player" on Linux Mint 20.3 (based on Ubuntu 20.04)[1]. Relates to #3526. [1] https://github.com/netblue30/firejail/issues/5861#issuecomment-1598132860 Reported-by: @MikeNavy
*	profiles: fix descriptions of vmware programs	Kelvin M. Klann	2023-06-21
\| \| \| \|	Relates to #3526.
*	Merge pull request #5808 from Dieterbe/qutebrowser-qt6-mpris-change	netblue30	2023-05-19
\|\ \| \| \| \|	qutebrowser: update MPRIS name for qutebrowser-qt6
\| *	qutebrowser: update MPRIS name for qutebrowser-qt6	Dieter Plaetinck	2023-05-05
\| \| \| \| \| \| \| \|	see https://github.com/qutebrowser/qutebrowser/issues/7431
* \|	Fix mpv 0.35.1 in Fedora 38	rusty-snake	2023-04-29
\|/
*	Fix typo in pycharm-professional include	Pedro Ribeiro	2023-04-24
\|
*	profiles: standardize on just "GTK" on comments	Kelvin M. Klann	2023-04-19
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	For consistency and to reduce confusion. The toolkit has been renamed from "GTK+" to just "GTK" in 2019[1]. Note: This also fixes some adjacent typos. Commands used to search and replace: $ git grep -lz 'G[Tt][Kk]' -- etc \| xargs -0 -I '{}' sh -c \ "printf '%s\n' \"\$(sed -E \ -e 's/G[Tt][Kk]\+?/GTK/g' \ -e 's/GTK-.\.0/GTK/g' \ -e 's/GTK base/GTK-base/g' \ -e 's/GTK-base /GTK-based /g' \ -e 's/Light weight/Lightweight/g' \ -e 's/client with GTK/client made with GTK/g' '{}')\" >'{}'" Misc: I noticed this on #5722. [1] https://mail.gnome.org/archives/gtk-devel-list/2019-February/msg00000.html
*	Merge pull request #5722 from pirate486743186/youtube-viewers	Kelvin M. Klann	2023-04-19
\|\ \| \| \| \|	youtube-viewers: refactor and add gtk-youtube-viewers-common
\| *	youtube-viewers: refactor and add gtk-youtube-viewers-common	pirate486743186	2023-04-16
\| \|
* \|	New profile: url-eater (#5780)	glitsj16	2023-04-18
\|/ \| \| \| \|	* Create url-eater.profile * RELNOTES: add url-eater to 'new profiles'
*	Merge pull request #5777 from hotcapy/patch-1	Kelvin M. Klann	2023-04-11
\|\ \| \| \| \|	softmaker-common.profile: add fstab to private-etc
\| *	softmaker-common.profile: add fstab to private-etc	Hotty Capy	2023-04-11
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	When using `private-etc`, the app "forgets" its product key and asks for license activation, even though it had already been done. Allow access to "/etc/fstab" to avoid it & the related GUI error: The application cannot create a unique identifier. Please make sure the application has sufficient permissions. Fixes #5773.
* \|	Merge pull request #5763 from kmk3/profiles-mv-readonly	netblue30	2023-04-06
\|\ \ \| \| \| \| \| \|	profiles: move read-only config entries to disable-common.inc
\| * \|	profiles: move read-only config entries to dc	Kelvin M. Klann	2023-03-28
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Command used to search for entries: $ git grep '^read-only ${HOME}/' -- 'etc/profile*' Note for gpg: ~/.gnupg/gpg.conf is apparently only managed by gpgconf(1) rather than through gpg(1) itself, in which case it does not need to be made read-write in gpg.profile.
\| * \|	firefox: move read-only entries to disable-common.inc	Kelvin M. Klann	2023-03-28
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Instead of duplicating them on every profile that tries to allow opening links in Firefox. And make that path read-write on firefox.profile.
\| * \|	mpv: move read-only entries to disable-common.inc	Kelvin M. Klann	2023-03-27
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Note: mpv itself does not modify anything in ~/.config/mpv as far as I know, in which case it does not need a read-write entry. Relates to #5706 #5707 #5710.
* \| \|	standardnotes-desktop: custom (cursor) theme support (#5768)	glitsj16	2023-04-03
\| \|/ \|/\|
* \|	pidgin: allow netlink	Harry Seiler	2023-04-03
\| \| \| \| \| \| \| \|	Fixes #5764
* \|	Create standard-notes.profile (#5761)	glitsj16	2023-03-29
\|/ \| \| \| \|	* Create standard-notes.profile * RELNOTES: add standard-notes to 'new profiles'
*	Merge pull request #5710 from pirate486743186/mov-cli	netblue30	2023-03-23
\|\ \| \| \| \|	add mov-cli.profile
\| *	add mov-cli	pirate486743186	2023-03-04
\| \|
* \|	Add profiles for jami and postman (#5691)	Kobaxidze256	2023-03-15
\| \|
* \|	microsoft-edge fixes (#5697)	glitsj16	2023-03-14
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	* microsoft-edge: fix spacing Create microsoft-edge-stable.profile Relates to #5696. * firecfg.config: add support for microsoft-edge-stable redirect * disable-common.inc: blacklist msedge SUID executables * microsoft-edge: add private-opt and allow internal sandbox access
* \|	profiles: drop hostname option (#5702)	glitsj16	2023-03-14
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Now that we have randomized UTS namespaces support[1] by default for every sandbox, there's no longer a need to set hostname to a fixed value. This commit removes such fixed hostname entries from all profiles that have it. [1] https://github.com/netblue30/firejail/discussions/5597#discussioncomment-4996357
* \|	profiles: streamline seccomp socket comment (#5735)	glitsj16	2023-03-14
\| \| \| \| \| \| \| \| \| \|	No functional changes. Relates to #639.
* \|	Merge pull request #5325 from pirate486743186/tutanota-desktop.profile-fix	netblue30	2023-03-13
\|\ \ \| \| \| \| \| \|	tutanota-desktop.profile improvements
\| * \|	tutanota-desktop.profile improvements	pirate486743186	2023-02-26
\| \| \|
* \| \|	Merge pull request #5715 from pirate486743186/yt-dlp	netblue30	2023-03-13
\|\ \ \ \| \| \| \| \| \| \| \|	refactor yt-dlp
\| * \| \|	refactor yt-dlp	pirate486743186	2023-03-09
\| \| \|/ \| \|/\|
* \| \|	mpv: improve and clarify comments (#5711)	glitsj16	2023-03-09
\| \| \|
* \| \|	add porn-cli.profile	pirate486743186	2023-03-05
\|/ /
* \|	bulk renaming electron to electron-common (#5700)	pirate486743186	2023-03-01
\| \| \| \| \| \|	Co-authored-by: pirate486743186 <>
* \|	rsync-download_only: fix local override name (#5695)	glitsj16	2023-02-28
\| \|
* \|	minor clarify userns comments (#5686)	pirate486743186	2023-02-26
\|/ \| \|	Co-authored-by: pirate486743186 <>
*	parsecd: ordering fixes (#5682)	glitsj16	2023-02-25
\|
*	Merge pull request #5646 from NetSysFire/parsecd	netblue30	2023-02-24
\|\ \| \| \| \|	New profile: parsecd
\| *	parsecd.profile: more white and blacklisting	NetSysFire	2023-02-24
\| \|
\| *	New profile: parsecd	NetSysFire	2023-02-18
\| \|
* \|	Merge pull request #5674 from kmk3/fix-ws-add-editorconfig	netblue30	2023-02-24
\|\ \ \| \| \| \| \| \|	build: Fix whitespace and add .editorconfig
\| * \|	Trim trailing whitespace	Kelvin M. Klann	2023-02-19
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Commands used to search and replace: $ git grep -Ilz '[[:blank:]]$' \| xargs -0 -I '{}' sh -c "printf '%s\n' \"\$(sed -E \ 's/[[:blank:]]+$//' '{}')\" >'{}'" This fixes all of the "trailing whitespace" errors raised by git: $ git diff --check 4b825dc642cb6eb9a060e54bf8d69288fbee4904..HEAD \| grep '^[^+]' \| cut -f 3 -d : \| LC_ALL=C sort \| uniq -c 72 space before tab in indent. 4 trailing whitespace.
\| * \|	Fix EOL at EOF	Kelvin M. Klann	2023-02-19
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Commands used to search and replace: $ git grep -Ilz '.' \| xargs -0 -I '{}' sh -c \ "printf '%s\n' \"\$(cat '{}')\" >'{}'" The above commands ensure that there is exaclty 1 line terminator at EOF (rather than 0 or more than 1) on all non-empty text files. This fixes all of the "new blank line at EOF" errors raised by git: $ git diff --check 4b825dc642cb6eb9a060e54bf8d69288fbee4904..HEAD \| grep '^[^+]' \| cut -f 3 -d : \| LC_ALL=C sort \| uniq -c 21 new blank line at EOF. 72 space before tab in indent. 4 trailing whitespace.
* \| \|	more private-etc	netblue30	2023-02-24
\| \| \|
* \| \|	New profiles: qpdf and redirects (#5675)	glitsj16	2023-02-23
\|/ / \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	* Create qpdf.profile and redirects qpdf (CLI) provides PDF metadata cleaning. See privacy-handbuch.de[1] for details. The site offers pdf-meta-clean.sh[2], which works very well with firejailed qpdf. [1] https://www.privacy-handbuch.de/handbuch_43a.htm [2] https://www.privacy-handbuch.de/download/pdf-meta-clean.sh * RELNOTES: add qpdf and redirects to new profiles section * firecfg.config: add qpdf and redirects * qpdf: use 'seccomp socket' instead of 'protocol unix' See https://github.com/netblue30/firejail/issues/639. Thanks @rusty-snake in code review.
* \|	merges, testing, private-etc	netblue30	2023-02-16
\| \|
* \|	qutebrowser: allow userscripts by default (#5649)	glitsj16	2023-02-15
\| \| \| \| \| \| \| \| \| \| \| \| \| \|	Fixes #5639. qutebrowser: drop apparmor Suggested in PR review.
* \|	transmission-cli: allow web client	glitsj16	2023-02-14
\| \|
* \|	private-etc: libreoffice, audacity, forzen-bubble, transmission, ↵	netblue30	2023-02-08
\|/ \| \| \|	md5sum/sha512sum, more sysutils testing, fix electron-hardened.inc.profile
*	re-fix private-etc	glitsj16	2023-02-06
\|
*	private-etc: pushing vulkan into games group	netblue30	2023-02-06
\|